Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D0540AE71BFEB2A2076BF7DA19BA295A07228086207B510AC22056B301E8F4D4/0/323830323a3a2f33362d3336203d3e203138373437.roa
File:                     323830323a3a2f33362d3336203d3e203138373437.roa (raw, json)
Hash identifier:          mBGxFhnWhBoqDAygvzCaOrmbh/p7SVuNuX/PbU8ZavY=
Subject key identifier:   0D:75:BC:00:27:56:3D:7E:0A:8C:70:1A:DE:2D:76:0E:01:F6:41:CE
Certificate issuer:       /CN=92FBC72BC92E884A25F6521C6E009627B0E74602
Certificate serial:       542A9E42167E24935060EB855C8850534A1E21F5
Authority key identifier: 92:FB:C7:2B:C9:2E:88:4A:25:F6:52:1C:6E:00:96:27:B0:E7:46:02
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/92FBC72BC92E884A25F6521C6E009627B0E74602.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/D0540AE71BFEB2A2076BF7DA19BA295A07228086207B510AC22056B301E8F4D4/0/323830323a3a2f33362d3336203d3e203138373437.roa
Signing time:             Tue 05 Mar 2024 17:58:59 +0000
ROA not before:           Tue 05 Mar 2024 17:53:59 +0000
ROA not after:            Tue 04 Mar 2025 17:58:59 +0000
asID:                     18747
IP address blocks:        2802::/36 maxlen: 36

Validation:               Failed, certificate revoked on Wed 05 Jun 2024 16:30:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            54:2a:9e:42:16:7e:24:93:50:60:eb:85:5c:88:50:53:4a:1e:21:f5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=92FBC72BC92E884A25F6521C6E009627B0E74602
        Validity
            Not Before: Mar  5 17:53:59 2024 GMT
            Not After : Mar  4 17:58:59 2025 GMT
        Subject: CN=0D75BC0027563D7E0A8C701ADE2D760E01F641CE
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:bf:81:3a:10:a6:24:ce:55:f2:d8:fc:56:ac:
                    bf:6f:6e:34:e9:ea:40:30:fc:83:ec:c5:cd:22:f9:
                    f6:32:a7:d8:dc:56:a2:50:2f:ed:c6:dd:b4:8f:51:
                    96:4e:16:7f:97:d0:91:05:71:f7:6f:ef:6e:72:ff:
                    23:83:4d:10:d4:fe:da:fb:79:b0:7c:68:91:58:7d:
                    6d:4b:e6:fb:02:4b:33:95:94:84:78:1f:c2:05:73:
                    7e:85:f5:87:f8:12:37:1b:56:7d:5c:9c:75:47:d1:
                    02:ca:7c:2a:04:7a:37:0e:39:99:0e:ac:63:e7:2b:
                    bd:36:4a:03:d3:0c:5c:c8:97:29:72:09:cd:74:d0:
                    05:bc:9f:26:15:2f:db:20:81:b7:0b:4a:41:bb:d6:
                    42:be:cb:d3:8c:b8:ac:7d:65:38:70:6c:29:13:88:
                    92:0c:2c:12:47:a8:45:09:d9:a2:30:cc:0a:27:a3:
                    5b:97:47:d2:b7:7c:8b:dc:f9:c2:93:98:3b:f4:0d:
                    2f:55:99:f9:2f:9d:14:c7:4d:55:35:1d:95:aa:e1:
                    25:fa:91:1b:76:7b:46:b9:e1:0b:14:93:ae:68:a4:
                    26:c5:90:b3:53:20:fa:d0:cf:3c:f3:8d:ac:a4:5b:
                    55:1c:d8:64:41:0a:8b:c8:2b:4b:e2:7e:65:87:57:
                    1b:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0D:75:BC:00:27:56:3D:7E:0A:8C:70:1A:DE:2D:76:0E:01:F6:41:CE
            X509v3 Authority Key Identifier:
                keyid:92:FB:C7:2B:C9:2E:88:4A:25:F6:52:1C:6E:00:96:27:B0:E7:46:02

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/D0540AE71BFEB2A2076BF7DA19BA295A07228086207B510AC22056B301E8F4D4/0/92FBC72BC92E884A25F6521C6E009627B0E74602.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/92FBC72BC92E884A25F6521C6E009627B0E74602.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D0540AE71BFEB2A2076BF7DA19BA295A07228086207B510AC22056B301E8F4D4/0/323830323a3a2f33362d3336203d3e203138373437.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2802::/36

    Signature Algorithm: sha256WithRSAEncryption
         45:a6:e7:1f:ed:5a:76:53:4d:b6:ed:57:25:c1:55:31:26:de:
         d1:dd:1f:c9:18:27:98:a4:d7:f5:7b:a1:78:f3:5d:29:3b:4f:
         c8:87:f2:c8:77:e2:04:87:7c:d3:d0:09:35:99:0d:cd:dc:f8:
         5e:7f:bc:48:b0:18:03:4d:df:e8:99:14:f9:83:ce:17:17:3b:
         d1:de:34:7d:85:be:74:24:76:29:af:c4:d2:9b:6f:fe:ac:4f:
         91:d2:a0:80:0d:04:fe:79:48:75:26:66:3a:1e:f3:2c:45:7a:
         52:ee:b7:66:04:e6:f3:0c:1d:1d:ba:40:1e:63:b3:6f:de:bf:
         47:9a:9f:a7:a1:0c:d3:7f:c1:a9:99:bd:28:25:1c:0f:94:12:
         b5:5f:d8:44:36:05:46:2a:79:bd:3b:ec:55:11:45:0c:3b:b4:
         a0:53:4d:18:42:ee:56:89:81:09:9d:2c:3a:23:89:0b:ac:b6:
         26:6e:d7:90:3a:1e:89:a2:4f:5d:5d:b6:48:60:b7:cf:39:75:
         4a:e6:90:38:4e:52:b1:52:d2:9f:19:c2:59:89:74:ed:85:b4:
         f6:68:66:3c:ce:ef:f0:e1:31:77:6b:be:b9:c2:ea:a4:4c:e3:
         e6:e1:80:7f:29:99:67:8a:4d:fe:da:94:a7:c0:62:73:55:f9:
         9e:53:2d:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----